QuickSearch.exe

  • File Path: C:\Program Files (x86)\Glary Utilities 5\QuickSearch.exe
  • Description: Glary Utilities QuickSearch

Hashes

Type Hash
MD5 2B88EF66E89467506ED13764774733E3
SHA1 4F65A4743359A216CA214313EE09AC915F0E0E7E
SHA256 62745809D763C0D21E196EAA151863016779BEFBA08EB41C405C326606883B7E
SHA384 53BCC33CC88C6573015E08B15534F79BAD0D9032D3B4EDC9CD531637ED15257E4852FF86DE7235029EDA529D1E3019EE
SHA512 23302A715BB790DEAEFF967399904BB418F8A09822BC613FC7812E0C723AC4569F871DA827D4983237A641E738ED4679160BA711DB27BE325BA24199376DA4B8
SSDEEP 24576:O/WrcuKZjA1wfnq7wPg3r7yLrubpD06DKP5VeXykCyY:wpuKjn5SvDCEikCj
IMP 37B7F6925A53EF48CE2C052E5018688E
PESHA1 B56B4815DEA2600D33B6E7890E5A790EFB963708
PE256 2B18EF232205E089B1B4668091BDB73293CAB4B7B65617004C7B7C3F5235D3CB

Runtime Data

Child Processes:

MemfilesService.exe

Open Handles:

Path Type
(R-D) C:\Windows\apppatch\DirectXApps_FOD.sdb File
(R-D) C:\Windows\Fonts\StaticCache.dat File
(R-D) C:\Windows\System32\en-US\ieframe.dll.mui File
(R-D) C:\Windows\System32\en-US\mlang.dll.mui File
(R-D) C:\Windows\System32\en-US\mshtml.dll.mui File
(R-D) C:\Windows\System32\en-US\propsys.dll.mui File
(R-D) C:\Windows\System32\en-US\shell32.dll.mui File
(R-D) C:\Windows\System32\en-US\windows.storage.dll.mui File
(R-D) C:\Windows\SysWOW64\en-US\urlmon.dll.mui File
(RW-) C:\Program Files (x86)\Glary Utilities 5 File
(RW-) C:\Users\user\AppData\Roaming\GlarySoft\QuickSearch\History.dat File
(RW-) C:\Windows File
(RW-) C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.9625_none_508ef7e4bcbbe589 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.19041.488_none_11b1e5df2ffd8627 File
(RW-) C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.19041.508_none_429cdbca8a8ffa94 File
(RW-) C:\xCyclopedia File
(RWD) C:\ProgramData\Microsoft\Windows\Start Menu File
(RWD) C:\ProgramData\Microsoft\Windows\Start Menu\Programs File
(RWD) C:\Users\user\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db File
(RWD) C:\Users\user\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db File
(RWD) C:\Users\user\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db File
(RWD) C:\Windows\Fonts\tahoma.ttf File
\BaseNamedObjects__ComCatalogCache__ Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000003.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000002.db Section
\BaseNamedObjects\C:*ProgramData*Microsoft*Windows*Caches*cversions.2 Section
\BaseNamedObjects\NLS_CodePage_1252_3_2_0_0 Section
\BaseNamedObjects\NLS_CodePage_437_3_2_0_0 Section
\BaseNamedObjects\windows_shell_global_counters Section
\Sessions\1\BaseNamedObjects\10b8HWNDInterface:16208fe Section
\Sessions\1\BaseNamedObjects\10b8HWNDInterface:a30744 Section
\Sessions\1\BaseNamedObjects\UrlZonesSM_user Section
\Sessions\1\BaseNamedObjects\windows_ie_global_counters Section
\Sessions\1\BaseNamedObjects\windows_shell_global_counters Section
\Sessions\1\BaseNamedObjects\windows_webcache_counters_{9B6AB5B3-91BC-4097-835C-EA2DEC95E9CC}_S-1-5-21-2047949552-857980807-821054962-504 Section
\Sessions\1\Windows\Theme2547664911 Section
\Windows\Theme3854699184 Section

Loaded Modules:

Path
C:\Program Files (x86)\Glary Utilities 5\QuickSearch.exe
C:\Windows\SYSTEM32\ntdll.dll
C:\Windows\System32\wow64.dll
C:\Windows\System32\wow64cpu.dll
C:\Windows\System32\wow64win.dll

Signature

  • Status: Signature verified.
  • Serial: 0F05AE21CDC17B9F3CF09D7BFC659BA3
  • Thumbprint: 362EBB303E088105BDCC07D94E6B7875D30C0D06
  • Issuer: CN=DigiCert Assured ID Code Signing CA-1, OU=www.digicert.com, O=DigiCert Inc, C=US
  • Subject: CN=Glarysoft LTD, O=Glarysoft LTD, S=Beijing, C=CN

File Metadata

  • Original Filename: QuickSearch.exe
  • Product Name: Glary Utilities
  • Company Name: Glarysoft Ltd
  • File Version: 5.35.0.131
  • Product Version: 5.35.0.1
  • Language: Chinese (Simplified, China)
  • Legal Copyright: Copyright (c) 2003-2020 Glarysoft Ltd
  • Machine Type: 32-bit

File Scan

  • VirusTotal Detections: 1/67
  • VirusTotal Link: https://www.virustotal.com/gui/file/62745809d763c0d21e196eaa151863016779befba08eb41c405c326606883b7e/detection/

File Similarity (ssdeep match)

File Score
C:\Program Files (x86)\Glary Utilities 5\QuickSearch.exe 97
C:\program files (x86)\Glary Utilities 5\QuickSearch.exe 97

MIT License. Copyright (c) 2020-2021 Strontic.